1
0
mirror of https://github.com/postgres/postgres.git synced 2025-10-25 13:17:41 +03:00

Revert "pg_upgrade: Fix quoting of some arguments in pg_ctl command"

This reverts commit d1c0b61.  The patch has some downsides that require
more attention, as discussed with Noah Misch.

Backpatch-through: 9.5
This commit is contained in:
Michael Paquier
2020-02-10 15:48:52 +09:00
parent 812bfe89a2
commit ff8c6fe95b

View File

@@ -188,10 +188,10 @@ stop_postmaster_atexit(void)
bool bool
start_postmaster(ClusterInfo *cluster, bool throw_error) start_postmaster(ClusterInfo *cluster, bool throw_error)
{ {
char cmd[MAXPGPATH * 4 + 1000];
PGconn *conn; PGconn *conn;
bool pg_ctl_return = false; bool pg_ctl_return = false;
PQExpBufferData cmd; char socket_string[MAXPGPATH + 200];
PQExpBufferData opts;
static bool exit_hook_registered = false; static bool exit_hook_registered = false;
@@ -201,28 +201,22 @@ start_postmaster(ClusterInfo *cluster, bool throw_error)
exit_hook_registered = true; exit_hook_registered = true;
} }
initPQExpBuffer(&cmd); socket_string[0] = '\0';
/* Path to pg_ctl */ #ifdef HAVE_UNIX_SOCKETS
appendPQExpBuffer(&cmd, "\"%s/pg_ctl\" -w ", cluster->bindir); /* prevent TCP/IP connections, restrict socket access */
strcat(socket_string,
" -c listen_addresses='' -c unix_socket_permissions=0700");
/* log file */ /* Have a sockdir? Tell the postmaster. */
appendPQExpBufferStr(&cmd, "-l "); if (cluster->sockdir)
appendShellString(&cmd, SERVER_LOG_FILE); snprintf(socket_string + strlen(socket_string),
appendPQExpBufferChar(&cmd, ' '); sizeof(socket_string) - strlen(socket_string),
" -c %s='%s'",
/* data folder */ (GET_MAJOR_VERSION(cluster->major_version) < 903) ?
appendPQExpBufferStr(&cmd, "-D "); "unix_socket_directory" : "unix_socket_directories",
appendShellString(&cmd, cluster->pgconfig); cluster->sockdir);
appendPQExpBufferChar(&cmd, ' '); #endif
/*
* Build set of options for the instance to start. These are
* handled with a separate string as they are one argument in
* the command produced to which shell quoting needs to be applied.
*/
initPQExpBuffer(&opts);
appendPQExpBuffer(&opts, "-p %d ", cluster->port);
/* /*
* Since PG 9.1, we have used -b to disable autovacuum. For earlier * Since PG 9.1, we have used -b to disable autovacuum. For earlier
@@ -233,52 +227,21 @@ start_postmaster(ClusterInfo *cluster, bool throw_error)
* is no need to set that.) We assume all datfrozenxid and relfrozenxid * is no need to set that.) We assume all datfrozenxid and relfrozenxid
* values are less than a gap of 2000000000 from the current xid counter, * values are less than a gap of 2000000000 from the current xid counter,
* so autovacuum will not touch them. * so autovacuum will not touch them.
*/ *
if (cluster->controldata.cat_ver >= BINARY_UPGRADE_SERVER_FLAG_CAT_VER)
appendPQExpBufferStr(&opts, "-b ");
else
appendPQExpBufferStr(&opts,
"-c autovacuum=off "
"-c autovacuum_freeze_max_age=2000000000 ");
/*
* Turn off durability requirements to improve object creation speed, and * Turn off durability requirements to improve object creation speed, and
* we only modify the new cluster, so only use it there. If there is a * we only modify the new cluster, so only use it there. If there is a
* crash, the new cluster has to be recreated anyway. fsync=off is a big * crash, the new cluster has to be recreated anyway. fsync=off is a big
* win on ext4. * win on ext4.
*/ */
if (cluster == &new_cluster) snprintf(cmd, sizeof(cmd),
appendPQExpBufferStr(&opts, "\"%s/pg_ctl\" -w -l \"%s\" -D \"%s\" -o \"-p %d%s%s %s%s\" start",
"-c synchronous_commit=off " cluster->bindir, SERVER_LOG_FILE, cluster->pgconfig, cluster->port,
"-c fsync=off " (cluster->controldata.cat_ver >=
"-c full_page_writes=off "); BINARY_UPGRADE_SERVER_FLAG_CAT_VER) ? " -b" :
" -c autovacuum=off -c autovacuum_freeze_max_age=2000000000",
if (cluster->pgopts) (cluster == &new_cluster) ?
appendPQExpBufferStr(&opts, cluster->pgopts); " -c synchronous_commit=off -c fsync=off -c full_page_writes=off" : "",
cluster->pgopts ? cluster->pgopts : "", socket_string);
#ifdef HAVE_UNIX_SOCKETS
appendPQExpBuffer(&opts,
"-c listen_addresses='' -c unix_socket_permissions=0700 ");
/* Have a sockdir? Tell the postmaster. */
if (cluster->sockdir)
{
appendPQExpBuffer(&opts,
" -c %s=",
(GET_MAJOR_VERSION(cluster->major_version) < 903) ?
"unix_socket_directory" : "unix_socket_directories");
appendPQExpBufferStr(&opts, cluster->sockdir);
appendPQExpBufferChar(&opts, ' ');
}
#endif
/* Apply shell quoting to the option string */
appendPQExpBufferStr(&cmd, "-o ");
appendShellString(&cmd, opts.data);
termPQExpBuffer(&opts);
/* Start mode for pg_ctl */
appendPQExpBufferStr(&cmd, " start");
/* /*
* Don't throw an error right away, let connecting throw the error because * Don't throw an error right away, let connecting throw the error because
@@ -290,7 +253,7 @@ start_postmaster(ClusterInfo *cluster, bool throw_error)
SERVER_START_LOG_FILE) != 0) ? SERVER_START_LOG_FILE) != 0) ?
SERVER_LOG_FILE : NULL, SERVER_LOG_FILE : NULL,
false, false,
"%s", cmd.data); "%s", cmd);
/* Did it fail and we are just testing if the server could be started? */ /* Did it fail and we are just testing if the server could be started? */
if (!pg_ctl_return && !throw_error) if (!pg_ctl_return && !throw_error)
@@ -327,10 +290,9 @@ start_postmaster(ClusterInfo *cluster, bool throw_error)
PQfinish(conn); PQfinish(conn);
pg_fatal("could not connect to %s postmaster started with the command:\n" pg_fatal("could not connect to %s postmaster started with the command:\n"
"%s\n", "%s\n",
CLUSTER_NAME(cluster), cmd.data); CLUSTER_NAME(cluster), cmd);
} }
PQfinish(conn); PQfinish(conn);
termPQExpBuffer(&cmd);
/* /*
* If pg_ctl failed, and the connection didn't fail, and throw_error is * If pg_ctl failed, and the connection didn't fail, and throw_error is